E-infrastructure

Digital security and user identity management are key elements of a trusted information system. This includes the use of federated authentication systems, user rights management, access auditing, login control and personal data protection. Ensuring a secure digital environment also includes educating users about security practices.

One of the key elements of a secure digital environment in higher education is AAI@EduHr, the authentication and authorisation infrastructure of the science and higher education system in the Republic of Croatia, jointly developed and maintained by Srce and CARNET. It enables a Single Sign-On (SSO) that provides users with a unique electronic identification to access a wide range of services, from LMS systems and email to access the eduroam network. 

Authentication is based on distributed LDAP address books, with standardised protocols such as SAML 2.0, and AAI@EduHr is integrated into the European identity framework eduGAIN. This approach enables simplified and secure access management, reduces the need for multiple passwords and improves interoperability with other academic institutions across Europe. The important aspect of user education is not neglected, the system includes tools for access monitoring, activity auditing and user support, thereby raising awareness of good security practices.

Example: The AAI@EduHr system enables students and teachers to have a single access to all e-services (e.g. Moodle, repositories, libraries) with the same identity. The introduction of two-factor authentication (2FA) for access to administrative applications reduces the risk of unauthorised access and increases the level of data protection.